Embedded spyware in Dell servers

NEW DELHI: Hardware giant Dell has confirmed that some of its PowerEdge server motherboards have been shipped to customers with embedded spyware.

According to Dell, the damage is limited to replacement motherboards for four Dell server products -- PowerEdge R310, PowerEdge R410, PowerEdge R510 and PowerEdge T410.

However, the exact malware type, and how it managed its way onto the motherboards is still not clear.

Dell confirmed the issue after a customer received a call warning about the infected motherboard.

"As part of Dellâ€™s quality process, we have identified a potential issue with our service mother board stock, like the one you received for your PowerEdge R410, and are taking preventative action with our customers accordingly. The potential issue involves a small number of PowerEdge server motherboards sent out through service dispatches that may contain malware. This malware code has been detected on the embedded server management firmware as you indicated."

"We take matters of information security very seriously and believe that any impact to a customerâ€™s information security is unlikely. To date we have received no customer reports related to data security. Systems running non-Windows operating systems are not vulnerable to this malware and this issue is not present on motherboards shipped new with PowerEdge systems."

"We have assembled a customer list and are directly contacting customers like you through a call campaign. On the call, you should be provided a phone number to call if you have additional questions."